Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 13-05-2020 01
Exécuté par Enseignant (administrateur) sur CG943C185598H (TOSHIBA PORTEGE R700) (21-05-2020 11:47:56)
Exécuté depuis C:\Users\Enseignant\Desktop
Profils chargés: Enseignant
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files\Dropbox\Client\97.4.467\QtWebEngineProcess.exe <2>
(INDEX EDUCATION SASU -> Index Education) C:\Program Files\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee Security Scan\3.11.1816\SSScheduler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Sosvirus (Le Bozec Cedric, Dominique, Marie ) -> ) [Fichier non signé] C:\ProgramData\SosVirus\UsbFix\Modules\UsbFixMonitor.exe
(Sosvirus (Le Bozec Cedric, Dominique, Marie ) -> ) [Fichier non signé] C:\ProgramData\SosVirus\UsbFix\UsbFix.exe
(Sun Microsystems, Inc. -> Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Sun Microsystems, Inc. -> Sun Microsystems, Inc.) C:\Program Files\eInstruction\Device Manager\jre\bin\javaw.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe <2>
(TOSHIBA CORPORATION -> TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION.) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosA2dp.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION.) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosAVRC.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION.) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtHid.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION.) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtHSP.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION.) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION.) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtProc.exe
(TOSHIBA CORPORATION -> TOSHIBA CORPORATION.) C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosOBEX.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\BM\TMBMSRV.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\OfficeScan Client\CNTAoSMgr.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\OfficeScan Client\NTRtScan.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\OfficeScan Client\PccNTMon.exe
(Trend Micro, Inc. -> Trend Micro Inc.) C:\Program Files\Trend Micro\OfficeScan Client\TmListen.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8555040 2010-04-06] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1733928 2010-03-11] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [TOSDCR] => C:\Program Files\TOSHIBA\PasswordUtility\TOSDCR.exe [169296 2007-08-28] (TOSHIBA CORPORATION -> )
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [521640 2010-09-28] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [55160 2009-03-09] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [521528 2009-08-13] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [742776 2010-05-08] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [ITSecMng] => C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [83336 2009-07-22] (TOSHIBA CORPORATION -> TOSHIBA CORPORATION)
HKLM\...\Run: [ThpSrv] => C:\Windows\system32\thpsrv /logon
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [611736 2010-05-10] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [22840 2009-11-11] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
HKLM\...\Run: [OfficeScanNT Monitor] => C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe [1105744 2011-09-15] (Trend Micro, Inc. -> Trend Micro Inc.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [261432 2017-10-20] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [6867968 2020-05-12] (Dropbox, Inc -> Dropbox, Inc.)
HKLM\...\Run: [snpstd] => C:\Windows\vsnpstd.exe [339968 2005-10-11] (Microsoft Windows Hardware Compatibility Publisher -> )
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\...\Run: [Google Update] => C:\Users\Enseignant\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\...\Policies\system: [Wallpaper] C:\Toshiba\Fonds ecran\bureau.jpg
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\...\Policies\system: [WallpaperStyle] 0
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\...\Policies\Explorer: [HideSCAHealth] 0
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\...\MountPoints2: {b8a0e875-5a60-11e3-8a93-e8e0b7f5b059} - F:\LaunchU3.exe -a
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\...\Run: [Google Update] => C:\Users\Enseignant\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\...\Run: [Adobe Reader Synchronizer] => C:\Program Files\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5417008 2020-05-04] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\...\Policies\system: [Wallpaper] C:\Toshiba\Fonds ecran\bureau.jpg
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\...\Policies\system: [WallpaperStyle] 0
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\...\Policies\Explorer: [HideSCAHealth] 0
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\...\MountPoints2: {b8a0e875-5a60-11e3-8a93-e8e0b7f5b059} - F:\LaunchU3.exe -a
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2020-05-04] (Adobe Inc. -> Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk [2013-01-09]
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION -> TOSHIBA CORPORATION.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\eInstruction Device Manager.lnk [2012-03-14]
ShortcutTarget: eInstruction Device Manager.lnk -> C:\Program Files\eInstruction\Device Manager\Launch.exe (eInstruction -> eInstruction Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2020-05-14]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.1816\SSScheduler.exe (McAfee, LLC -> McAfee, LLC)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
GroupPolicyScripts: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1FF37167-05AF-448A-A356-2AC59657FBDB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {23088F89-2F60-4738-B30E-617E8B343044} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2113337775-2932093982-424607665-1000Core => C:\Users\Enseignant\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {29B73D6F-7262-4AC3-A1E8-0F0E3C0382A2} - System32\Tasks\{3C73F631-C428-456C-934F-56DBB73BFD80} => C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE [15933792 2011-03-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {4D286F73-C758-47A7-AB0C-2BE398625220} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_371_Plugin.exe [1458232 2020-05-12] (Adobe Inc. -> Adobe)
Task: {53BC27F7-5C1C-402D-8205-F79DEEDDFC2F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {5D323848-A22E-48B3-AAE4-ACD38445E00E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {60A07FDC-787A-4ED4-9650-D6A2B271E940} - System32\Tasks\UsbFix Monitor => C:\ProgramData\SosVirus\UsbFix\Modules\UsbFixMonitor.exe [1239160 2020-03-23] (Sosvirus (Le Bozec Cedric, Dominique, Marie ) -> ) [Fichier non signé]
Task: {78A18438-D14C-4A5F-A532-C977E8A4E5A7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-05-12] (Adobe Inc. -> Adobe)
Task: {8AE7FA82-F93A-48B3-8C8C-645A2DF5881F} - System32\Tasks\UsbFix Boot Scan => C:\ProgramData\SosVirus\UsbFix\UsbFix.exe [2053240 2020-03-23] (Sosvirus (Le Bozec Cedric, Dominique, Marie ) -> ) [Fichier non signé]
Task: {9879E3C5-2E26-4A36-AA54-7A3867D5BD83} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {A6175BFF-B58F-49BE-B58F-4086F41E52F8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-21] (Dropbox, Inc -> Dropbox, Inc.)
Task: {ADCBAF69-3043-4F7E-84EA-9478578A40DA} - System32\Tasks\{2BB46CCA-BB4F-44D5-AF58-1370B9023E52} => C:\Windows\system32\pcalua.exe -a C:\Users\Enseignant\Downloads\lide20lide30n670un676un1240uvst7031a_xpen\SetupSG.exe -d C:\Users\Enseignant\Downloads\lide20lide30n670un676un1240uvst7031a_xpen
Task: {D81AE22C-CBD7-4B53-8DAE-1BDC88B0C0BD} - System32\Tasks\{486C9A6F-9CED-4C4E-A967-94B60FB8DFB4} => C:\Windows\system32\pcalua.exe -a "C:\Users\Enseignant\Downloads\pilote pour canoscan lide 20 windows7\lide20lide30n670un676un1240uvst7031a_xpen\SetupSG.exe" -d "C:\Users\Enseignant\Downloads\pilote pour canoscan lide 20 windows7\lide20lide30n670un676un1240uvst7031a_xpen"
Task: {D85369EB-3D27-4D21-A649-AC6E70827A5F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2113337775-2932093982-424607665-1000UA => C:\Users\Enseignant\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-28] (Google Inc -> Google Inc.)
Task: {E06070D7-B6B0-42EA-9C78-9E3D8F2F2A6F} - System32\Tasks\{098ABD69-0D53-427B-B0E9-D761EF00E632} => C:\Windows\system32\pcalua.exe -a C:\Users\Enseignant\Downloads\HexaflexagonXmasEdition.exe -d C:\Users\Enseignant\Downloads

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2FC8E799-5650-48E3-9587-C183067AD09B}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F75B4328-D459-4522-B5B2-EF9D7F50784B}: [DhcpNameServer] 172.16.0.1

Internet Explorer:
==================
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-2113337775-2932093982-424607665-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.cg94.fr
HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.cg94.fr
SearchScopes: HKLM -> DefaultScope {D206D77C-B93A-4A9B-81AC-31D46BB33C58} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {D206D77C-B93A-4A9B-81AC-31D46BB33C58} URL = hxxp://www.bing.com/search?q={searchTerms}&form=TSHMDF&pc=MATM&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2113337775-2932093982-424607665-1000 -> DefaultScope {D206D77C-B93A-4A9B-81AC-31D46BB33C58} URL =
SearchScopes: HKU\S-1-5-21-2113337775-2932093982-424607665-1000 -> {D206D77C-B93A-4A9B-81AC-31D46BB33C58} URL =
SearchScopes: HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888 -> DefaultScope {D206D77C-B93A-4A9B-81AC-31D46BB33C58} URL =
SearchScopes: HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888 -> {D206D77C-B93A-4A9B-81AC-31D46BB33C58} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2011-02-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2012-03-01] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-01] (Sun Microsystems, Inc. -> Sun Microsystems, Inc.)
BHO: ChromeFrame BHO -> {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} -> C:\Program Files\Google\Chrome Frame\Application\32.0.1700.102\npchrome_frame.dll [2014-01-23] (Google Inc -> Google Inc.)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
Handler: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\32.0.1700.102\npchrome_frame.dll [2014-01-23] (Google Inc -> Google Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\utyheag7.default [2020-05-20]
FF Homepage: Mozilla\Firefox\Profiles\utyheag7.default -> www.cg94.fr
FF Extension: (Firefox Certificate Store Hotfix) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\utyheag7.default\Extensions\firefox-hotfix@mozilla.org.xpi [2015-03-27] [] [non signé]
FF Extension: (EPUBReader) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\utyheag7.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2015-06-13] []
FF Extension: (Panda Security Toolbar) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\utyheag7.default\Extensions\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}.xpi [2017-02-21] []
FF Extension: (DownloadHelper) - C:\Users\Enseignant\AppData\Roaming\Mozilla\Firefox\Profiles\utyheag7.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2015-06-13] []
FF ProfilePath: C:\Users\Enseignant\AppData\Roaming\KompoZer\Profiles\9la62e65.default [2012-03-15]
FF Extension: (FrenchLocale) - C:\Users\Enseignant\AppData\Roaming\KompoZer\Profiles\9la62e65.default\Extensions\{5bf73a30-8317-404b-bb12-bb1d7aacb90d} [2012-03-15] [] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_371.dll [2020-05-12] (Adobe Inc. -> )
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2012-02-02] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll [2012-03-01] (Sun Microsystems, Inc.) [Fichier non signé]
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.0.61118.0\npctrl.dll [2011-11-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-02-17] (VideoLAN) [Fichier non signé]
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2113337775-2932093982-424607665-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Enseignant\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-05] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888: @zoom.us/ZoomVideoPlugin -> C:\Users\Enseignant\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-05] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default [2020-05-21]
CHR Notifications: Default -> hxxps://www.agrieuro.fr; hxxps://www.spotern.com
CHR HomePage: Default -> hxxp://www.masantenaturelle.com/chroniques/conseil/conseil_bouillon_ayurvedique.php
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-08]
CHR Extension: (Chrome Media Router) - C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-26]
CHR Profile: C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\Guest Profile [2015-01-25]
CHR Profile: C:\Users\Enseignant\AppData\Local\Google\Chrome\User Data\System Profile [2018-06-25]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM\...\Chrome\Extension: [fagakgcelolinfnkfgekcnedpaklfcok]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]
CHR HKU\S-1-5-21-2113337775-2932093982-424607665-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [leahdjjpjmnamomgpojikeapflgbmjab] - C:\Users\Enseignant\AppData\Roaming\cacaoweb\cacaoweb.crx <non trouvé(e)>
CHR HKU\S-1-5-21-2113337775-2932093982-424607665-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-05212020091120888\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [leahdjjpjmnamomgpojikeapflgbmjab] - C:\Users\Enseignant\AppData\Roaming\cacaoweb\cacaoweb.crx <non trouvé(e)>
StartMenuInternet: Google Chrome.55FDK5TCVRG2KTR5Q3ST7NGQHE - C:\Users\Enseignant\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [88648 2020-02-25] (Adobe Inc. -> Adobe Systems)
S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-21] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-21] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [37384 2020-05-12] (Dropbox, Inc -> Dropbox, Inc.)
R2 MajIndexEducationService; C:\Program Files\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe [3241064 2019-07-30] (INDEX EDUCATION SASU -> Index Education)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [5547464 2020-05-20] (Malwarebytes Inc -> Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.1816\McCHSvc.exe [326728 2020-05-12] (McAfee, LLC -> McAfee, LLC)
R2 ntrtscan; C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe [1900904 2011-09-07] (Trend Micro, Inc. -> Trend Micro Inc.)
R3 TMBMServer; C:\Program Files\Trend Micro\BM\TMBMSRV.exe [345616 2011-06-16] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmlisten; C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe [1828032 2011-09-07] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 TmProxy; C:\Program Files\Trend Micro\OfficeScan Client\TmProxy.exe [689680 2011-04-15] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 TPCHSrv; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [685488 2010-05-10] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 BCM43XX; C:\Windows\System32\DRIVERS\bcmwl6.sys [2707448 2012-03-01] (Broadcom Corporation -> Broadcom Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [129056 2020-05-20] (Malwarebytes Corporation -> Malwarebytes)
S3 FTDIBUS; C:\Windows\system32\drivers\ftdibus.sys [60104 2010-12-14] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 FTSER2K; C:\Windows\system32\drivers\ftser2k.sys [73032 2010-12-14] (Future Technology Devices International Ltd -> FTDI Ltd.)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [178952 2020-05-20] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [158592 2020-05-21] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [64080 2020-05-21] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [213912 2020-05-21] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [96880 2020-05-21] (Malwarebytes Inc -> Malwarebytes)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [60544 2010-02-24] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [141568 2010-02-24] (Microsoft Windows Hardware Compatibility Publisher -> NEC Electronics Corporation)
R3 PGEffect; C:\Windows\System32\DRIVERS\pgeffect.sys [24064 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
S3 rimspci; C:\Windows\system32\drivers\rimspe86.sys [51200 2010-06-23] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 risdpcie; C:\Windows\system32\drivers\risdpe86.sys [59904 2010-09-13] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 rixdpcie; C:\Windows\system32\drivers\rixdpe86.sys [38400 2009-07-04] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
S3 Ser2pl; C:\Windows\system32\drivers\ser2pl.sys [78848 2008-01-31] (Microsoft Windows Hardware Compatibility Publisher -> Prolific Technology Inc.)
S3 silabenm; C:\Windows\system32\drivers\silabenm.sys [17920 2009-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories, Inc.)
S3 silabser; C:\Windows\system32\drivers\silabser.sys [63488 2009-11-11] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
S3 snpstd; C:\Windows\System32\DRIVERS\snpstd.sys [390784 2006-05-03] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 STTub30; C:\Windows\System32\Drivers\STTub30.sys [37808 2011-10-31] (STMicroelectronics -> STMicroelectronics)
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [68368 2011-07-20] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [178448 2011-07-20] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [59152 2011-07-20] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 TmFilter; C:\Program Files\Trend Micro\OfficeScan Client\TmXPFlt.sys [262416 2011-07-12] (Trend Micro, Inc. -> Trend Micro Inc.)
R2 TmPreFilter; C:\Program Files\Trend Micro\OfficeScan Client\TmPreFlt.sys [36624 2011-07-12] (Trend Micro, Inc. -> Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [90448 2010-12-07] (Trend Micro, Inc. -> Trend Micro Inc.)
S3 TosRfSnd; C:\Windows\System32\drivers\tosrfsnd.sys [53760 2010-03-23] (Microsoft Windows Hardware Compatibility Publisher -> TOSHIBA Corporation)
R2 TVALZFL; C:\Windows\System32\DRIVERS\TVALZFL.sys [12920 2009-06-19] (TOSHIBA CORPORATION -> TOSHIBA Corporation)
S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [45056 2017-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R2 VSApiNt; C:\Program Files\Trend Micro\OfficeScan Client\VSApiNt.sys [1405720 2011-07-12] (Trend Micro, Inc. -> Trend Micro Inc.)
U3 aswbdisk; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-05-21 11:47 - 2020-05-21 11:51 - 000030441 _____ C:\Users\Enseignant\Desktop\FRST.txt
2020-05-21 11:47 - 2020-05-21 11:49 - 000000000 ____D C:\FRST
2020-05-21 11:45 - 2020-05-21 11:46 - 002012160 _____ (Farbar) C:\Users\Enseignant\Desktop\FRST.exe
2020-05-21 09:17 - 2020-05-21 09:17 - 000008081 _____ C:\Users\Enseignant\Desktop\UsbFix_Report.txt
2020-05-21 09:11 - 2020-05-21 09:11 - 000064080 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2020-05-21 09:08 - 2020-05-21 09:08 - 000158592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2020-05-21 09:08 - 2020-05-21 09:08 - 000096880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2020-05-21 09:06 - 2020-05-21 09:06 - 000213912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-05-20 23:13 - 2020-05-20 23:13 - 000003764 _____ C:\Users\Enseignant\Desktop\AdwCleaner[C00].txt
2020-05-20 23:08 - 2020-05-20 23:12 - 000000000 ____D C:\AdwCleaner
2020-05-20 23:06 - 2020-05-20 23:07 - 008196784 _____ (Malwarebytes) C:\Users\Enseignant\Desktop\adwcleaner_8.0.4.exe
2020-05-20 22:43 - 2020-05-20 22:43 - 000018283 _____ C:\Users\Enseignant\Desktop\Malwares.txt
2020-05-20 22:17 - 2020-05-21 10:21 - 000000000 ____D C:\Users\Enseignant\AppData\LocalLow\IGDump
2020-05-20 22:14 - 2020-05-20 22:14 - 000178952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2020-05-20 22:14 - 2020-05-20 22:14 - 000001967 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-05-20 22:14 - 2020-05-20 22:14 - 000001955 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-05-20 22:14 - 2020-05-20 22:14 - 000001955 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-05-20 22:14 - 2020-05-20 22:14 - 000000000 ____D C:\Users\Enseignant\AppData\Local\mbamtray
2020-05-20 22:14 - 2020-05-20 22:14 - 000000000 ____D C:\Users\Enseignant\AppData\Local\mbam
2020-05-20 22:13 - 2020-05-20 22:13 - 000129056 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2020-05-20 22:13 - 2020-05-20 22:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-05-20 22:08 - 2020-05-20 22:08 - 000000000 ____D C:\Program Files\Malwarebytes
2020-05-20 22:06 - 2020-05-20 22:06 - 001980016 _____ (Malwarebytes) C:\Users\Enseignant\Desktop\MBSetup.exe
2020-05-20 17:40 - 2020-05-21 09:06 - 000001778 _____ C:\Users\Public\Desktop\UsbFix Anti-Malware.lnk
2020-05-20 17:40 - 2020-05-21 09:06 - 000001778 _____ C:\ProgramData\Desktop\UsbFix Anti-Malware.lnk
2020-05-20 17:40 - 2020-05-20 20:05 - 000003218 _____ C:\Windows\system32\Tasks\UsbFix Monitor
2020-05-20 17:40 - 2020-05-20 20:05 - 000003216 _____ C:\Windows\system32\Tasks\UsbFix Boot Scan
2020-05-20 16:12 - 2020-05-20 16:12 - 004870480 _____ (SOSVirus) C:\Users\Enseignant\Desktop\UsbFix_2020.exe
2020-05-20 15:42 - 2020-05-20 16:14 - 000000000 ____D C:\ProgramData\SosVirus
2020-05-19 13:51 - 2020-05-19 13:51 - 000074433 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42974477.pdf
2020-05-18 21:05 - 2020-05-18 21:05 - 000002183 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2020-05-18 21:05 - 2020-05-18 21:05 - 000002171 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2020-05-18 21:05 - 2020-05-18 21:05 - 000002171 _____ C:\ProgramData\Desktop\Google Earth Pro.lnk
2020-05-18 16:02 - 2020-05-18 16:02 - 000074436 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42954599.pdf
2020-05-18 12:13 - 2020-05-18 12:13 - 000074717 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42947997.pdf
2020-05-16 17:04 - 2020-05-16 17:32 - 000000000 ____D C:\Users\Enseignant\Desktop\famileo
2020-05-16 08:27 - 2020-05-16 08:27 - 000074167 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42917263.pdf
2020-05-15 23:14 - 2020-05-15 23:14 - 000074165 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42915946.pdf
2020-05-14 15:14 - 2020-05-14 15:14 - 000074774 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42883187.pdf
2020-05-14 15:14 - 2020-05-14 15:14 - 000074774 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42883187 (1).pdf
2020-05-14 15:05 - 2020-05-14 15:05 - 000002061 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2020-05-14 15:05 - 2020-05-14 15:05 - 000002061 _____ C:\ProgramData\Desktop\McAfee Security Scan Plus.lnk
2020-05-14 15:05 - 2020-05-14 15:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2020-05-14 15:04 - 2020-05-20 22:58 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2020-05-13 23:43 - 2020-05-13 23:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-05-13 19:41 - 2020-05-13 19:41 - 000074489 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42868276.pdf
2020-05-13 19:41 - 2020-05-13 19:41 - 000074489 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42868276 (1).pdf
2020-05-12 14:18 - 2020-05-12 14:18 - 000037384 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2020-05-12 14:18 - 2020-05-12 14:18 - 000036848 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2020-05-12 14:18 - 2020-05-12 14:18 - 000036848 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2020-05-12 14:18 - 2020-05-12 14:18 - 000036848 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2020-05-11 10:06 - 2020-05-11 10:06 - 000073988 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42776435.pdf
2020-05-11 09:52 - 2020-05-11 09:52 - 000074829 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42774877 (1).pdf
2020-05-11 09:50 - 2020-05-11 09:50 - 000074829 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42774877.pdf
2020-05-09 11:58 - 2020-05-09 11:58 - 004152207 _____ C:\Users\Enseignant\Desktop\masques l'hay.pdf
2020-05-08 17:39 - 2020-05-08 17:42 - 000125013 _____ C:\Users\Enseignant\Desktop\attestation-deplacement-fr-20200324.pdf
2020-05-08 11:06 - 2020-05-08 11:06 - 000074247 _____ C:\Users\Enseignant\Downloads\Etiquettes-FV42768567.pdf
2020-05-01 09:05 - 2020-05-01 09:05 - 000137668 _____ C:\Users\Enseignant\Downloads\attestation-deplacement-fr (7).pdf
2020-05-01 09:05 - 2020-05-01 09:05 - 000125923 _____ C:\Users\Enseignant\Downloads\justificatif-deplacement-professionnel-fr.pdf
2020-04-30 21:07 - 2020-04-30 21:07 - 001393041 _____ C:\Users\Enseignant\Desktop\UG_AMPLIDECT595ULE_Fr_V1-1.pdf
2020-04-28 22:32 - 2020-04-28 22:32 - 001393041 _____ C:\Users\Enseignant\Desktop\UG_AMPLIDECT595ULE_Fr_V1-1 complet.pdf
2020-04-28 22:31 - 2020-04-28 22:31 - 001251547 _____ C:\Users\Enseignant\Desktop\QUGAMPLIDECT595-ULE_Fr_A3_V1.2-1.pdf
2020-04-28 21:15 - 2020-04-28 21:15 - 000832997 _____ C:\Users\Enseignant\Downloads\Fiche technique ULE 595 Geemarc.pdf
2020-04-25 13:22 - 2020-04-25 13:22 - 000137668 _____ C:\Users\Enseignant\Downloads\attestation-deplacement-fr (6).pdf
2020-04-23 09:41 - 2020-04-23 09:41 - 000137668 _____ C:\Users\Enseignant\Downloads\attestation-deplacement-fr (5).pdf
2020-04-23 09:41 - 2020-04-23 09:41 - 000137668 _____ C:\Users\Enseignant\Downloads\attestation-deplacement-fr (4).pdf

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-05-21 11:49 - 2009-07-14 06:34 - 000031616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-21 11:49 - 2009-07-14 06:34 - 000031616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-21 11:43 - 2013-02-11 15:41 - 000000000 ____D C:\Users\Enseignant\Documents\Fichiers Outlook
2020-05-21 10:23 - 2017-09-21 10:08 - 000001182 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2020-05-21 09:06 - 2017-09-21 10:08 - 000001178 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2020-05-21 09:06 - 2012-03-27 09:07 - 000010770 __RSH C:\ProgramData\ntuser.pol
2020-05-21 09:06 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-20 20:05 - 2010-11-21 02:30 - 000778676 _____ C:\Windows\system32\perfh00C.dat
2020-05-20 20:05 - 2010-11-21 02:30 - 000158822 _____ C:\Windows\system32\perfc00C.dat
2020-05-20 20:05 - 2010-11-20 23:01 - 001744402 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-20 20:05 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2020-05-20 17:40 - 2012-03-20 11:57 - 000120328 _____ C:\Users\Enseignant\AppData\Local\GDIPFONTCACHEV1.DAT
2020-05-20 17:29 - 2009-07-14 06:33 - 000447232 _____ C:\Windows\system32\FNTCACHE.DAT
2020-05-20 17:28 - 2017-10-18 20:24 - 000000000 ____D C:\Program Files\Panda Security
2020-05-20 17:22 - 2017-10-18 20:22 - 000000000 ____D C:\ProgramData\Panda Security
2020-05-20 17:21 - 2017-10-18 20:25 - 000000000 ____D C:\Users\Enseignant\AppData\Roaming\Panda Security
2020-05-18 21:05 - 2012-03-02 12:24 - 000000000 ____D C:\Program Files\Google
2020-05-18 11:09 - 2017-04-13 19:41 - 000002036 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-05-14 15:05 - 2015-11-16 17:36 - 000000000 ____D C:\Program Files\McAfee Security Scan
2020-05-13 23:43 - 2017-09-21 10:08 - 000000000 ____D C:\Program Files\Dropbox
2020-05-12 13:38 - 2018-03-13 14:38 - 000004654 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-12 13:38 - 2012-04-02 10:48 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2020-05-12 13:38 - 2012-04-02 10:48 - 000004484 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-05-12 13:38 - 2012-03-01 16:38 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2020-05-12 13:38 - 2012-02-23 10:40 - 000000000 ____D C:\Windows\system32\Macromed
2020-05-08 09:26 - 2012-09-06 13:24 - 000002437 _____ C:\Users\Enseignant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-05-08 09:26 - 2012-09-06 13:24 - 000002400 _____ C:\Users\Enseignant\Desktop\Google Chrome.lnk
2020-05-05 11:25 - 2016-06-10 12:15 - 000000000 ____D C:\Users\Enseignant\Documents\Eric

==================== Fichiers à la racine de certains dossiers ========

2012-03-14 15:33 - 2012-03-14 15:34 - 000000440 _____ () C:\Program Files\Common Files\eInstruction.ini
2012-03-02 17:15 - 2003-03-21 14:45 - 000250544 _____ (KeyWorks Software) C:\Program Files\Common Files\keyhelp.ocx
2012-03-20 11:56 - 2012-03-02 12:18 - 000000173 _____ () C:\Users\Enseignant\AppData\Local\msmathematics.qat.Administrator
2012-03-20 15:37 - 2014-12-04 11:39 - 000000173 _____ () C:\Users\Enseignant\AppData\Local\msmathematics.qat.Enseignant
2012-03-20 11:56 - 2012-03-01 15:19 - 000000017 _____ () C:\Users\Enseignant\AppData\Local\resmon.resmoncfg
2019-01-11 12:16 - 2019-01-11 12:16 - 000000000 _____ () C:\Users\Enseignant\AppData\Local\{1C5C9F9F-3356-420F-AFDF-FF75F371FDEA}
2019-01-14 16:20 - 2019-01-14 16:20 - 000000000 _____ () C:\Users\Enseignant\AppData\Local\{96BD5ECD-3025-4B53-B431-2865B4400996}

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)


LastRegBack: 2020-05-20 19:05
==================== Fin de FRST.txt ========================